EUVD-2023-53271

Malicious code in bioql PyPI...

CVE-2025-1963

A vulnerability was found in projectworlds Online Hotel Booking 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /reservation.php. The manipulation of the argument checkin leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-1963 projectworlds Online Hotel Booking reservation.php sql injection

A vulnerability was found in projectworlds Online Hotel Booking 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /reservation.php. The manipulation of the argument checkin leads to sql injection. The attack can be initiated remotely. The exploit has been...

Hotel Management System adults parameter cross-site scripting vulnerability

Hotel Management System is an MIS project based on a hotel management system. Hotel Management System v1.0 suffers from a cross-site scripting vulnerability that originates when the adults parameter in reservation.php is copied in plain text between tags in an HTML document, and any input is echo...

Projectworlds Railway Reservation System SQL Injection Vulnerability

Projectworlds Railway Reservation System is a railroad reservation system from Projectworlds India. A SQL injection vulnerability exists in Projectworlds Railway Reservation System v1.0, which stems from the "from" parameter of reservation.php not validating received characters and sending them t...

PT-2023-30896 · Unknown · Railway Reservation System

Name of the Vulnerable Software and Affected Versions: Railway Reservation System version 1.0 Description: The issue concerns multiple Unauthenticated SQL Injection vulnerabilities. The 'from' parameter of the "reservation.php" resource does not validate the characters received, and they are sent...

CVE-2023-49270

Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'checkindate' parameter of the reservation.php resource is copied into the HTML document as plain text between tags. Any input is echoed unmodified in the application's response...

Cross site scripting

Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'checkoutdate' parameter of the reservation.php resource is copied into the HTML document as plain text between tags. Any input is echoed unmodified in the application's response...

Cross site scripting

Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'children' parameter of the reservation.php resource is copied into the HTML document as plain text between tags. Any input is echoed unmodified in the application's response...

CVE-2023-49272

Hotel Management v1.0 is affected by multiple authenticated Reflected XSS flaws. The vulnerability stems from the children parameter in reservation.php, whose value is echoed into the HTML document as plain text. This could allow attackers who have valid access to craft inputs that are reflected ...

CVE-2023-49271 Hotel Management v1.0 - Multiple Reflected Cross-Site Scripting (XSS)

Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'checkoutdate' parameter of the reservation.php resource is copied into the HTML document as plain text between tags. Any input is echoed unmodified in the application's response...

CVE-2023-49271

CVE-2023-49271 affects Hotel Management v1.0. The vulnerability is a set of authenticated Reflected Cross-Site Scripting (XSS) flaws in reservation.php where the check_out_date parameter is copied into the HTML as plaintext and any input is echoed back in the response. Affected component is the r...

CVE-2023-49269

Hotel Management v1.0 is vulnerable to multiple authenticated Reflected Cross-Site Scripting vulnerabilities. The 'adults' parameter of the reservation.php resource is copied into the HTML document as plain text between tags. Any input is echoed unmodified in the application's response...

PT-2023-31137 · Unknown · Hotel Management

Name of the Vulnerable Software and Affected Versions: Hotel Management version 1.0 Description: The issue concerns multiple authenticated Reflected Cross-Site Scripting vulnerabilities. Specifically, the adults parameter of the "reservation.php" resource is copied into the HTML document as plain...

PT-2023-31139

Name of the Vulnerable Software and Affected Versions Hotel Management version 1.0 Description The issue concerns multiple authenticated Reflected Cross-Site Scripting vulnerabilities. Specifically, the check out date parameter of the "reservation.php" resource is copied into the HTML document as...

PT-2023-31138

Name of the Vulnerable Software and Affected Versions Hotel Management version 1.0 Description The issue concerns multiple authenticated Reflected Cross-Site Scripting vulnerabilities. Specifically, the check in date parameter of the "reservation.php" resource is copied into the HTML document as...

PT-2023-31140

Name of the Vulnerable Software and Affected Versions Hotel Management version 1.0 Description The issue concerns multiple authenticated Reflected Cross-Site Scripting vulnerabilities. Specifically, the children parameter of the "reservation.php" resource is copied into the HTML document as plain...

motelvisava.com XSS vulnerability

Open Bug Bounty ID: OBB-605909 Description| Value ---|--- Affected Website:| motelvisava.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...